diff --git a/roles/nginx/defaults/main.yml b/roles/nginx/defaults/main.yml
index 098d66f..1e87437 100644
--- a/roles/nginx/defaults/main.yml
+++ b/roles/nginx/defaults/main.yml
@@ -11,8 +11,7 @@ nginx_root_prefix: "{{ web_root_prefix }}"
 nginx_ssl_session_timeout: 1h
 # 10MB -> 40,000 sessions
 nginx_ssl_session_cache: shared:SSL:10m
-# 1400 bytes to fit in one MTU (default is 16k!)
-nginx_ssl_buffer_size: 1400
+nginx_ssl_buffer_size: 4k
 nginx_ssl_dhparam: /etc/ssl/certs/dhparam.pem
 nginx_ssl_protocols: TLSv1.2 TLSv1.3